Looking for a technically savvy leader with exceptional executive presence, communication skills, and is passionate about managing risk to join a new and expanding Application Risk Management (ARM) team. The ARM team’s mission is to protect the Deloitte brand and provide a consistent approach to application security, risk identification and mitigation by providing a model that enables the functions and enabling areas to respond to evolving market demands in an agile and flexible manner.
The ARM team is responsible for developing frameworks for technology teams to understand and navigate through all risks, which include Cyber, Technology & Infrastructure, Office of Confidentiality and Privacy and Office of General Counsel.
This individual will be a subject matter expert in all areas of risk including regulatory requirements, data security, confidentiality and privacy for all applications including cloud, on premise, and vendor applications.
The ARM team will build trust with business and risk leaders in the delivery of new technologies and applications to ensure adherence to risk standards while providing a smoother, more easily replicable process for the delivery team.
In this interesting and diverse role you will:
Serve as the central point of contact for technology project teams for all risk management including risk identification, assessment, and resolution throughout the IT Systems Delivery Lifecycle (SDLC).
Assist with the design and implementation of a solution to manage and provide visibility into the risk management process.Deploy a companion site to educate teams on the risk process and frameworks.
Support the development and implementation of processes, mitigations and controls to support effective governance, risk management and compliance of all technology projects.
Educate project delivery teams on standard processes and potential risks early in the discovery phase.
Facilitate exceptions through standard risk acceptance processes.
Gather and streamline application risk standards and create reusable frameworks for ARM COE.
Track and report progress and provide visibility into the risk mitigation process and upcoming steps/toll gates to all teams involved.
Support semi-annual/annual risk reviews of existing solutions.
Establish and continuously refine practices for educating, monitoring, and supporting delivery teams.
5+ years of work experience in consulting and/or related industry experience, specialized advisory experience preferred.
Strong consultative and advisory skills.
In-depth knowledge of technology risk management principles, privacy laws, and data protection/security regulations is preferred.
Technical proficiency in cloud-based environments and understanding of underlying technologies.
Must have strong analytical abilities, negotiation/presentation skills.
Excellent Communicator. Strong advisory, presentation, and communication skills required.